Lucene search
K

14 matches found

Vulnrichment
Vulnrichment
added 2026/03/13 11:42 a.m.2 views

CVE-2026-32414 WordPress Advanced Woo Labels plugin <= 2.36 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in ILLID Advanced Woo Labels advanced-woo-labels allows Remote Code Inclusion.This issue affects Advanced Woo Labels: from n/a through = 2.36...

7.2CVSS5.8AI score0.00397EPSS
Exploits0References1
NVD
NVD
added 2026/03/11 2:16 p.m.5 views

CVE-2026-3904

Calling NSS-backed functions that support caching via nscd may call the nscd client side code and in the GNU C Library version 2.36 under high load on x8664 systems, the client may call memcmp on inputs that are concurrently modified by other processes or threads and crash. The nscd client in the...

6.2CVSS0.00146EPSS
Exploits1References5
OSV
OSV
added 2026/03/11 2:16 p.m.2 views

DEBIAN-CVE-2026-3904

Calling NSS-backed functions that support caching via nscd may call the nscd client side code and in the GNU C Library version 2.36 under high load on x8664 systems, the client may call memcmp on inputs that are concurrently modified by other processes or threads and crash. The nscd client in the...

6.2CVSS5.4AI score0.00146EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/01/10 8:58 p.m.7 views

WordPress Post Duplicator plugin <= 2.36 - Authenticated (Contributor+) Protected Post Disclosure vulnerability

Authenticated Contributor+ Protected Post Disclosure vulnerability discovered by Webbernaut in WordPress Plugin Post Duplicator versions = 2.36...

5.3CVSS7AI score0.00298EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/01/31 2:15 p.m.4 views

CVE-2023-6246

A heap-based buffer overflow was found in the vsysloginternal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when the openlog function was not called, or called with the ident argument set to NULL, and the program name the basename of...

8.4CVSS6AI score0.04794EPSS
Exploits7References13
CNNVD
CNNVD
added 2023/05/12 12:0 a.m.3 views

Vinteo VCC 跨站脚本漏洞

Vinteo VCC is a video conferencing application from Vinteo. A security vulnerability exists in Vinteo VCC version v2.36.4, which stems from the discovery of a cross-site scripting XSS vulnerability contained via the conference parameter. An attacker can exploit the vulnerability to inject arbitra...

6.1CVSS6.2AI score0.0061EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:3 a.m.2 views

SUSE CVE-2020-2691

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.36, prior to 6.0.16 and prior to 6.1.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

6.5CVSS6.7AI score0.00463EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/12/08 12:0 a.m.4 views

DHIS 2 跨站脚本漏洞

DHIS 2 is a software application. A flexible information system for data capture, management, validation, analysis and visualization. A cross-site scripting vulnerability exists in DHIS 2 core versions 2.35, 2.36, 2.37, 2.38, 2.39, which arises from various features of DHIS 2 that allow an...

5.4CVSS5.5AI score0.00351EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/12/08 12:0 a.m.6 views

DHIS 2 安全漏洞

DHIS 2 is a software application. A flexible information system for data capture, management, validation, analysis and visualization. A security vulnerability exists in DHIS 2 core versions 2.34, 2.35, 2.36, 2.37, 2.38, and 2.39, which originates from the fact that a DHIS 2 user who has the right...

7.2CVSS7AI score0.006EPSS
Exploits0References3
OSV
OSV
added 2020/01/15 5:15 p.m.2 views

CVE-2020-2726

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.36, prior to 6.0.16 and prior to 6.1.2. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracl...

7.5CVSS7.1AI score0.00379EPSS
Exploits0References3
OSV
OSV
added 2020/01/15 5:15 p.m.2 views

UBUNTU-CVE-2020-2701

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.36, prior to 6.0.16 and prior to 6.1.2. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracl...

7.5CVSS7.1AI score0.00557EPSS
Exploits0References3
OSV
OSV
added 2020/01/15 5:15 p.m.1 views

UBUNTU-CVE-2020-2681

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.36, prior to 6.0.16 and prior to 6.1.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

6.5CVSS5.8AI score0.00446EPSS
Exploits0References3
OSV
OSV
added 2020/01/15 5:15 p.m.1 views

UBUNTU-CVE-2020-2725

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.36, prior to 6.0.16 and prior to 6.1.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

6.5CVSS7.2AI score0.00432EPSS
Exploits0References3
CNVD
CNVD
added 2017/07/24 12:0 a.m.4 views

CloudBees Jenkins Pipeline: Groovy Plugin Remote Code Execution Vulnerability

CloudBees Jenkins Pipeline: Groovy Plugin is a U.S. CloudBees company's Java-based development of continuous integration tools in the process of building plug-ins . A remote code execution vulnerability exists in CloudBees Jenkins Pipeline: Groovy Plugin versions 2.36 and earlier. A remote attack...

8.8CVSS8.5AI score0.01608EPSS
Exploits0References1
Rows per page
Query Builder